09) 




(12) 



(43) Date of publication: 

27.08.1997 Bulletin 1997/35 



Europaisches Patentamt 
European Patent Office 
Off ice europeen des brevets (11) EP 0 792 044 A2 

EUROPEAN PATENT APPLICATION 

(51) Int. Cl.^: H04L 9/32 



(21) Application number: 97102779.2 

(22) Date of filing: 20.02.1997 



(84) 


Designated Contracting States: 


• Kobayasht, Kenichi 




DE FR GB 


Ashigarakami-gun, Kanagawa (JP) 
• Aratani, Toru 


(30) 


Priority: 23.02.1996 J P 62076/96 
06.01.1997 JP 418/97 


Ashigarakami-gun, Kanagawa (JP) 
(74) Representative: Hoffmann, Eckart, Dipl.-lng. 


(71) 


Applicant: FUJI XEROX CO., LTD. 


Patentanwalt, 




Minato-ku, Tokyo (JP) 


Bahnhofstrasse 103 


(72) 




82166 Grafelfing (DE) 


Inventors: 






Shin, Kil-ho 

Ashigarakami-gun, Kanagawa (JP) 





(54) Device and method for authenticating user's access rights to resources according to the 
Challenge-Response principle 



(57) The present invention provides a device for 
authenticating user's access rights to resources, which 
comprises first memory means 1 1 1 for storing challeng- 
ing data 18, second memory means 115 for storing 
unique identifying information of the user 116, third 
memory means 113 for storing proof support informa- 
tion 13 which is a result of executing predetermined 
computations to the unique identifying information of the 
user 16 and unique security characteristic information 
of the device 14. response generation means 116 for 
generating a response 19 from the challenging data 18 
stored in the first memory means 1 1 1 . the unique iden- 
tifying information 16 stored in the second memory 
means 1 1 5 and the proof support information 1 3 stored 
in the third memory means 113, and verification means 
106 for verifying the legitimacy of the response 19 by 
verifying that the response 19. the challenging data 18 
and the unique security characteristic information of the 
device 14 satisfy a specific predefined relation. 
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Description 

The present invention relates to a device for 
authenticating user s access rights to resources. 

Program execution control technologies are known 
in the field to which the present invention belongs. The 
program execution control technologies are technolo- 
gies to: 

1 . Embed a routine for user authentication during 
the use of an application program; 

2. Have the routine examine whether the user 
attempting execution of the application possesses a 
key for proper authentication; and 

3. Continue the program only when the existence of 
the key for authentication is verified, otherwise to 
halt execution. 

By using these technologies, execution of the appli- 
cation program is enabled only for proper users having 
the authentication key. The technologies are commer- 
cialized in the software marketing field, two examples 
being SentinelSuperPro (trade mark) from Rainbow 
Technologies. Inc. and HASP (trade mark) from Aladdin 
Knowledge Systems. Lid. 

In the use of program execution control technolo- 
gies, a user who executes software possesses an 
authentication key as user identification information. 
The authentication key is a key for encryption and is dis- 
tributed to the user by a party who allows use of soft- 
ware, a software vender, for example. The 
authentication key is securely sealed in a memory, or 
the like, of hardware to prevent duplication, and is deliv- 
ered to the user using physical means such as the 
postal service. The user mounts personal compu- 
ter/workstation using a designated method. When the 
user starts up the application program and when the 
execution of the program reaches the user authentica- 
tion routine, the program communicates with the hard- 
ware in which the authentication key of the user is 
embedded. Based on the results of the communication, 
the program identifies the authentication key. and 
moves the execution to the following step upon confir- 
mation of existence of the con-ect authentication key If 
the communication fails and the verification of the exist- 
ence of the authentication key is not established, the 
program stops automatically, discontinuing the execu- 
tion of subsequent steps. 

Identification of the authentication key by the user 
authentication routine is executed according to the fol- 
lowing protocol, for example: 

1. The user authentication routine generates and 
transmits an appropriate numt>er to the hardware in 
which the key is embedded. 

2. The hardware in which the key is embedded 
encrypts the number using the embedded authenti- 
cation key and transmits it back to the authentica- 
tion routine. 



3. The authentication routine determines whether 
or not the number transmitted back is the number 
expected beforehand, or. in other words, the 
number obtained by encrypting the number with a 

5 correct authentication key. 

4. If the number transmitted t>ack coincides with the 
expected number, the execution of the program is 
continued, othenwise the execution is halted. 

5. In this case, communication between the appli- 
10 cation program and the hardware in which the 

authentication key is embedded must be different 
for each execution even if it is between the same 
location in the same application with the same 
hardware. 

IS Otherwise, a user who does not possess the cor- 
rect authentication key may be able to execute the 
program by recording once the content of communi- 
cation during the normal execution process, and by 
responding to the application program according to 

20 the recording each time the subsequent program is 
executed. Such improper execution of the applica- 
tion program by replaying the communication con- 
tent is called a replay attack. 

25 In order to prevent a replay attack, in general, a ran- 
dom number is generated and used for each communi- 
cation as the number to be transmitted to the hardware 
in which the key is embedded. 

The present invention has been made in view of the 

30 above circumstances and an aspect of the present 
invention is to provide a device for authenticating user's 
access rights to resources and its method which set 
both users and the protecting side such as application 
providers free from inconveniences caused by handling 

35 of large amount of unique information, for example, a lot 
of authentication keys, and thereby user*s access rights 
are easily and simply authenticated when the execution 
control of the program, privacy protection of electronic 
mails, access control of files or computer resources and 

40 so forth are carried out. 

Additional aspects and advantages of the invention 
will be set forth in part in the description which follows 
and in part will be obvious from the description, or may 
be learned by practice of the invention. The aspects and 

45 advantages of the invention may be realized and 
attained by means of the instrumentalities and combina- 
tions particularly pointed out in the appended daims. It 
will be understood that each of the features described 
herein can be taken separately or jointly To achieve the 

50 aspects and in accordance with the purpose of the 
invention, as embodied and broadly described herein, 
one aspect of a device for authenticating user's access 
rights to resources of the present invention comprises 
first memory means for storing challenging data, sec- 

55 ond merriory means for storing unique identifying infor- 
mation of the user, third memory means for storing 
proof support information which is a result of executing 
predetermined computations to the user unique identi- 
fying information and unique security characteristic 
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inrormation of the device, response generation means 
for generating a response from the challenging data 
stored in the first memory means, the unique identifying 
information stored in the second memory means and 
the proof support information stored in the third mennory 5 
means, and verification means for verifying the legiti- 
macy of the response by verifying that the response, the 
challenging data and the unique security characteristic 
information of the device satisfy a specific predefined 
relation. ,0 

With the atK>ve constitution, the unique security 
characteristic information of the device assigned to the 
protecting side and the unique identifying information of 
the user are made to be independent of each other. The 
information on actual access rights is represented as is 
proof support information (i.e., an access ticket). The 
user has the user unique identifying information in 
advance, and on the other hand, a protector, such as a 
program aeator prepares the unique security charac- 
teristic information, or the counterpart of the unique 20 
security characteristic information in terms of the public 
key cryptography, independent of the user unique iden- 
tifying information held by the user. An access ticket is 
generated based on the user unique identifying informa- 
tion and the unique security characteristic information 25 
used in creation of the application program or the like. 
Access tickets are distributed to the users, whereby 
authentication of the user's access rights to resources 
such as execution control can be performed. Thus com- 
plexity occurring in the case where both sides of user so 
and protector use the same information for performing 
authentication can be avoided. 

I^oreover, in the above constitution, at least the 
second memory means and the response generation 
means may be confined in the protect means which pre- 35 
vents any data inside from being observed or being 
tampered with from the outside. It may also be possible 
to implement at least the second memory means and 
the response generation means within a small portable 
device such as a smart card, 40 

The response generating means may comprise first 
calculation means and second calculation means, 
wherein the first calculation means executes predeter- 
mined calculations to the user unique identifying infor- 
mation stored in the second memory means and the 45 
proof support information stored in the third memory 
means to obtain the unique security characteristic infor- 
mation as a result, and the second calculation means 
executes predetermined calculations to the challenging 
data stored in the first memory means and the unique so 
security characteristic information calculated by the first 
calculation means to generate the response as a result 
of calculation. 

The above-described response generation means 
may comprise third calculation rneans. fourth calcula- ss 
tion means and fifth calculation means. The third calcu- 
lation means executes predetermined calculations to 
the challenging data stored in the first memory means 
and the proof support information stored in the third 



4 

memory means, the fourth calculation means executes 
predetermined calculations to the challenging data 
stored in the first memory means and the user unique 
identifying information stored in the second memory 
means, and the fifth calculation means executes prede- 
termined calculations to the results of calculation by the 
third and fourth calculation means, whereby the 
response is generated. In this case, at least the secorxi 
memory means and the fourth calculation means can 
be confined within the protect means which prevents 
any data inside from being observed or being tampered 
with from the outside. At least the second memory 
means and the fourth calculation means may be imple- 
mented within a small portable device such as a smart 
card. 

The accompanying drawings, which are incorpo- 
rated in and constitute a part of this specification illus- 
trate embodiment of the invention and. together with the 
description, serve to explain the objects, advantages 
and principles of the invention. In the drawings: 

Rg. 1 is a block diagram showing an example of the 
fundamental constitution of the present invention: 
Rg. 2 is a block diagram showing an example of the 
constitution of the present invention in case that an 
entire device is implemented within a single PC; 
Rg. 3 is a block diagram showing the constitution of 
a first embodiment of a device for authenticating 
user's access rights to resources according to the 
present invention; 

Rg, 4 is a flow chart showing functions of means 
constituting the devices of the first embodiment: 
Rg. 5 is a block diagram showing the constitutions 
of a verification device and a proving device of a 
second embodiment of the device for authenticating - 
user*s access rights to resources according to the 
present invention; 

Rg. 6 is a flow chart showing functions of means 
constituting the verification device of the second 
embodiment: 

Rg, 7 is a block diagram showing a constitutional 
example of execution means of the verification 
means of the second embodiment: 
Rg. 8 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 7; 

Rg. 9 is a block diagram showing a second consti- 
tutional example of execution means of the verifica- 
tion means of the second embodiment; 
Rg. 10 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Rg. 9; 

Rg. 1 1 is a block diagram showing a third constitu- 
tional example of execution means of the verifica- 
tion means of the second embodiment: 
Rg. 12 is a flow chart showing functions of the con- 
. stitutional example of the execution means shown 
in Fig. 1 1 ; 

Rg. 13 is a block diagram showing a fourth consti- 
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tutional example oi execution means of the verifica- 
tion means of the second emlxxdiment: 
Fig. 14 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 13; * 5 
Fig. 15 is a block diagram showing the constitution 
of a proving device of a third embodiment of the 
device for autherrticating user's access rights to 
resources according to the present invention; 
Fig. 16 is a flow chart showing functions of means io 
constituting the proving device of the third enrt>odi- 
ment; 

Fig. 1 7 is a block diagram showing a constitutional 
example of a fourth embodiment of the device for 
authenticating user's access rights to resources is 
according to the present invention; 
Fig, 18 is a block diagram showing another consti- 
tutional example of the fourth embodiment; 
Fig. 19 is a flow chart showing functions of means 
of the constitutional example shown in Fig. 1 7; 20 
Fig. 20 is a block diagram showing the constitution 
of a fifth embodiment of the device for authenticat- 
ing user's access rights to resources according to 
the present invention; 

Fig. 21 is a flow chart showing functions of means 25 
constituting a verification device of the fifth embod- 
iment; 

Fig. 22 is a block diagram showing the constitution 
of a sixth embodiment of the device for authenticat- 
ing user's access rights to resources according to 30 
the present invention; 

Fig. 23 is a flow chart showing functions of means 
constituting devices of the sixth embodiment; 
Fig. 24 is a block diagram showing the constitution 
of a seventh embodiment of the device for authenti- 3S 
eating user's access rights to resources according 
to the present invention; 

Fig. 25 is a flow chart showing functions of means 
constituting devices of the seventh embodiment; 
and 40 
Fig. 26 is a block diagram showing a part of consti- 
tution of a proving device of ninth and tenth emtxxJ- 
iments of the device for authenticating user's 
access rights to resources according to the present 
invention. 45 

At first, an example of the fundamental constitution 
of the present invention is described. The user authenti- 
cation system of the example can be applied to privacy 
protection of electronic mails or control of access to files so 
or computer resources as well as control of execution of 
applications. 

In Fig. 1 , the user authentication system comprises 
a verification device 10 and a proving device 11: the 
proving device 1 1 receives an access ticket (proof sup- 55 
port data) from an access ticket generation device 12; 
the verification device 10 executes a verification routine 
15; the proving device 11 retains user identifying infor- 
mation 16 and the access ticket 13 and executes a 
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response generation program 1 7. 

The access ticket generation device 12 is installed 
in the protector side, such as an application provider. 
The access ticket generation device 12 generates the 
access ticket 13 based on unique security characteristic 
information of the device 14 and the user identifying 
information 16 and the access ticket 13 is forwarded to 
the user through communication or sending of a floppy- 
diskette or the like to be retained by the proving device 
11 of the user Then the verification device 10 sends 
challenging data 18 to the proving device 11. The prov- 
ing device 1 1 generates a response 19 by utilizing the 
access ticket 13 and the user identifying information 16. 
arxJ returns it to the verification device 10. The verifica- 
tion device 10 verifies the legitimacy of the response 
based on the challenging data, that is, the verification 
device 1 0 verifies that the response has been generated 
based on the challenging data and the unique security 
characteristic information of the device. 

If the legitimacy of the response is verified, the 
access rights of the user is authenticated; accordingly, 
continuation of execution of a program, access to files, 
and so forth, are permitted. 

With the above constitution, an example of execu- 
tion control of an application program is now described. 

In the above constitution, a user of an application 
program retains only one piece of user identifying infor- 
mation 16. The user identifying information is equivalent 
to a password in the password authentication and is 
unique, significant information which identifies the user. 
If it is possible for the user to copy and distribute the 
user identifying information 16. it will lead to the use of 
the application program by the user without legitimate 
access rights; therefore, the user identifying information 
16 is protected by protection means 160 so that even 
the user who is a legitimate owner of the user identifying 
information 16 cannot steal it. The protection means 
160 may be a hardware with a protecting effect (herein- 
after referred to as tamper-resistant hardware) against 
theft of the inside conditions by external probes. A 
method of implementation of the tamper-resistant hard- 
ware will be described later. 

In addition to the user identifying information 1 6. the 
response generation program 17 which executes prede- 
termined computations is provided to the user. The pro- 
gram 17 performs communication with a user 
authentication routine (verification routine 15): on 
receiving two parameters, namely, the user identifying 
information 16 and the access ticket 13. the program 1 7 
executes computations to arbitrary inputted values to 
generate the response 19 for identifying the user. The 
user identifying information 1 6 is used in the course of 
the computation, and it is required to protect at least a 
part of the program 17 by the protection means 160 
since leakage of the user identifying information 16 to 
the outside will cause a problem by the above-described 
reason. 

Hereinafter, memory means for storing the user 
identifying information and a part of the program which 
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are protected by the protection means 160. device for 
executing the part of. the program (for example, consist- 
ing of a memory and a MPU) and the protection means 
1 60 are integrally referred to as token (shown by the ref- 
erence numeral 20 in Fig. i). The token may have port- 5 
ability, like a smart card. 

Similar to the conventional execution control tech- 
nologies, the verification routine 1 5 is set to the applica- 
tion program. The verification routine 1 5 is same as that 
of the conventional technologies in that it communicates w 
with the response generation program 17 retained by 
the user, and continues execution of the program if and 
only if a returned result (response 18) is correct. There- 
fore, it is necessary that the program creator knows the 
method of computing the combination of transferred is 
data (challenging data 18) and correct returned data 
corresponding thereto (response 19). 

Some examples of functions of the verification rou- 
tine 15 are explained as follows: 

20 

1. Data to be transferred (challenging data 18) and 
expected returned data (expected value) are 
embedded in the verification routine 1 5. The verifi- 
cation routine 15 fetches the data to be transferred 
and transfers it to the user, and receives the 25 
returned data from the user. Then the verification 
routine 15 compares the returned data from the 
user with the expected value: if they are identical 
with each other, the verification routine 15 executes 

the next step of the program: if they are not identi- 30 
cal. the verification routine 1 5 halts the execution of 
the program. 

In the case where the returned data is 
assumed to be a result of -encryption of the trans- 
ferred data in accordance with a predetermined 35 
encryption algorithm, the unique security character- 
istic information of the device is an encryption key. 

2. Data to be transferred (challenging data 1 8) and 
data generated by applying a one-way function to 
expected returned data (expected value) are 40 
embedded in the verification routine 15. The verifi- 
cation routine 15 fetches the data to be transferred 
and transfers it to the user, and receives the 
returned data from the user. Then the verification 
routine 15 compares data generated by applying 45 
the one-way function to the returned data from the 
user with the expected value: if they are identical 
with each other, the verification routine 1 5 executes 

the next step of the program; if they are not identi- 
cal, the verification routine 1 5 halts the execution of so 
the program. 

In the case where the returned data is 
assumed to be a result of encryption of the trans- 
ferred data in accordance with a predetermined 
encryption algorithm, the unique security character- 55 
istic information of the device is an encryption key. 

3. Protection is provided by encrypting a part of 
code of the application program in accordance with 
a predetermined encryption algorithm so that exe- 



cution of the program may be impossible. The veri- 
fication routine 15 transfers the encrypted code to 
the user and receives returned data from the user, 
and then replace the received value with the 
encrypted code. 

With this constitution, execution of the program 
may be possible if and only if the returned data is a 
correct decryption of the encrypted code. In this 
case, the unique security characteristic information 
is a decryption key for decrypting the encrypted 
code. 

4. Protection is provided by encrypting a part of 
code of the application program in accordance with 
a predetermined encryption algorithm so that exe- 
cution of the program may be impossible. Moreover, 
data generated by encrypting a decryption key 
paired with the encryption key used for enaypting 
the code is embedded as transferred data in the 
verification routine 15. The verification routine 15 
ti^ansfers the encrypted decryption key to the user 
and receives returned data from the user, and then 
decrypts the encrypted code with the value of the 
received data as a decryption key. 

With this constitution, the encrypted code is 
correctly decrypted if and only if the returned data is 
a decryption key which has been correctly 
decrypted, aruj accordingly execution of the pro- 
gram becomes possible. In this case, the unique 
security characteristic information of the device is a 
decryption key for decrypting the encrypted decryp- 
tion key. 

In the conventional execution control technolo- 
gies, the user identifying information (authentica- 
tion key of the user) is identical with the unique 
security characteristic information of the device. 
The conventional response generation routine 
receives the unique security characteristic informa- 
tion and the data transferred from the verification 
routine as the input, and then executes computa- 
tions thereto for generating data to be returned. 

By contrast, the present invention is characterized 
in that the user identifying information 16 and the unique 
security characteristic information of the device 1 4 are 
independent of each other. In this constitutional exam- 
ple, the response generation program 17 adds the 
access ticket 13 to the user identifying information 16 
and the data transferred from the verification routine 1 5 
(challenging data 18) as the input, and then executes 
predetermined computations to them for generating the 
data to be returned (response 19). The constitution has 
the following properties: 

1 . The access ticket 1 3 is the data calculated based 
on the specific user identifying information 16 and 
the unique security characteristic information of the 
device. 

2. At least from the viewpoint of the computation 
amount, it is impossible to calculate the unique 
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security characteristic information from the access 
ticket 13 without knowing the user identifying infor- 
mation 16. 

3. The response generation program 17 executes 
computations for generating correct data to be 
returned if and only if a correct combination of the 
user identifying information 16 and the access 
ticket 13. Note that the access ticket 13 has been 
calculated based on the user identifying information 
16- 

With the constitution described so far, the execution 
control can be carried out by the following steps: the 
user has the user identifying information 16 in advance; 
the program creator prepares the application program 
independent of the user identifying information 16 
retained by the user; and the program creator generates 
the access ticket 13 based on the user identifying infor- 
mation 16 and the unique security characteristic infor- 
mation of the device 16 used in creating the application 
program and distributes the access ticket 1 3 to the user. 

It may be possible to constitute the user identifying 
information 16 by two pieces of user identifying informa- 
tion for distinguishing the information used for preparing 
the access ticket 13 from the information used in a com- 
munication program by the user. In the most represent- 
ative example, the user identifying information 16 is 
made to be a public key pair: the public key is published 
to be used for generating the access ticket; and the indi- 
vidual key is confined within the token 20 as user's indi- 
vidual secret information. In this case, it is possible to 
calculate the access ticket 13 while the user identifying 
inforrT»ation 16 is kept secret by calculating the access 
ticket 13 from the unique security characteristic informa- 
tion 1 4 and the public key of the public key pair 

First Embodiment 

In a first embodiment, an access ticket t is defined 
as the relation (1). 

t = D-e+ co<t)(n) (1) 

In the following bulleted paragraphs, symbols used 
in the above relation are described. 

An integer n is an RSA modulus, hence, a product 
of two very large prime numbers p and q (n = pq ). 
<t> (n) denotes the Euler number of n. hence, a prod- 
uct of two integers p-1 and q-1 (<t>(n) = (p-1)(q-1) ). 
A piece of user identifying information e is an inte- 
ger allocated to each user. A piece of user identify- 
ing information is unique to a user: a different user 
identifying information is allocated to a different 
user. 

An access-ticket secret key D is a private key of an 
RSA put>lic key pair. Since the modulus is assumed 
to be n, the relation 2 is derived from the definition. 



gcd (D. (|»(n)) = ^ (2) 

In the above, gcd (x. y) denotes the greatest com- 
mon divisor of two integers x and y. The existence 
5 of an integer E satisfying the relation (3). which is 

called an access-ticket public key. is derived from 
the relation (2). 

ED mod (^(n) = 1 (3) 

10 

o) is an integer dependent upon both n and e. It is 
required that a probably different value will be allo- 
cated to CO if at least one of n and e is different. In 
defining a> in a consistent manner, a one-way hash 
15 function h may be used. 

CO = h (n I e) (4) 

In the relation (4). n | e denotes the concatenation 

20 of the two bit-string representations of n and e. A one 
way hash function h is a function having the property 
that it is extremely difficult to calculate two distinct x and 
y satisfying h(x) = h(y) . Known examples of one-way 
hash functions are the MD2. MD4 and MD5 of RSA 

25 Data Securities Inc., and the standard SHS (Secure 
Hash Standard) of the U.S. federal government. 

Among the above numbers, t. E and n can be open 
to public without any risk, while the rest of the numbers, 
namely D, e. ca p. q and <|> (n). are to be kept secret to 

30 everytxxdy but those who are allowed to generate an 
access ticket. Fig. 3 depicts the constitution of the first 
embodiment. A verification device 10 comprises the fol- 
lowings: an access ticket public key storing means 101 : 
a random number generation means 102; a random 

35 number storing means 103; a response storing means 
105: a verification means 106; an execution means 107; 
and an error trapping means 108. On the other hand, a 
proving device 1 1 comprises the followings: a challeng- 
ing data storing means 1 1 1 ; a first calculation means 

40 112; an access ticket storing means 1 13; a second cal- 
culation means 114; a user identifying information stor- 
ing means 115; and a response generation means 116. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be desaibed. 

45 

1. The verification device 10 is invoked by a user. 
The way to invoke the device varies depending 
upon how the device is implemented. A few exam- 
ples are now shown. First, the verification device 10 

so may be implemented as a part of an application 
program to be installed and executed on a user s 
PC or workstation. In this case, the user may invoke 
the verification device 10 by invoking the application 
program in ordinary ways. For example, the user 

55 may click the iconic symbol representing the appli- 
cation program on the computer screen with a 
pointing device such as a mouse, or may use a key- 
board. The verification device 10 may be imple- 
mented as a program installed and executed on a 
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server computer that is connected to a user's PC or 
workstation by nneans of computer network. In this 
case, in order to invoke the verification device 10, a 
user first invokes a communication program 
installed on his/her own PC or workstation: the 
communication program establishes a connection 
to the server, and asks the server to invoke the ver- 
ification device 10. When the communication pro- 
gram and the server follow the TCP/IP protocols, for 
instance, the verification device 10 is allocated to a 
predefined port number on the server computer 
When the communication program issues a 
requirement for establishing a connection to the 
port, inetd. a demon program running on the server 
conputer. receives the requirement. After checking 
which program is allocated to the specified port, it 
finally invokes the verification device 10, and estab- 
lishes a connection between the verification device 
and the communication program. This way of imple- 
mentation is very common in networked computer 
systems like Internet. The verification device 10 
may be implemented as a program written on a 
ROM or EEPROM within a smart card reader- 
writer. In this case, the proving device 1 1 is a pro- 
gram installed on an IC chip of a smart card; the 
verification device 10 is invoked whenever a user 
inserts his/her smart card into the smart card 
reader-writer. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 
storing means 11 1 of the proving device 1 1 . The 
modulus n is stored in the access-ticket public key 
storing means 101 . On the other hand, challenging 
data C is generated as follows: the random number 
generation means 1 02 generates a random integer 
r so that r and the modulus n are relatively prime 
(gcd{r, n) = 1 ); the generated random integer r is 
stored in the random number storing means 103: 
finally, the random number generation means 102 
sets the value of C to r. As stated later in more 
detail, the response which the proving device 1 1 is 
to respond to the verification device 10 is RSA- 
encryption of r with D as the key and n as the mod- 
ulus. Since the value of C is identical to the random 
integer r. it varies with occurrence of communica- 
tion between the verification device 10 and the 
proving device 11. This prevents so-called replay 
attack from succeeding. 

3. The first calculation means 112 of the proving 
device 11 calculates an intermediate result R' 
according to the relation (5). /Vn access ticket t to be 
used is stored in the access ticket storing means 
113. 

R' = C * mod n (5) 

4. The second calculation means 1 14 of the proving 
device 11 calculates a differential S according to 
the relation (6). A user identifying information e to 



be used is stored in the user identifying information 
storing means 1 15. 

S = C ' mod n (6) 

5 

5. Receiving R' and S from the first calculation 
means 1 12 and the second calculation means 114. 
the response generation means 1 16 of the proving 
device 1 1 calculates a response R according to the 

10 relation (7). 

R = R'S mod n (7) 

6. The proving device 11 returns the generated 
75 response R to the response storing means 105 of 

the verification device 10. 

7. The verification means 106 of the verification 
device 1 0 first performs the calculation (8). Both the 
exponent E and the modulus n are stored in the 

20 access ticket public key storing means 101. and the 
response R is stored in the response storing means 
105. 

R ^ mod n (8) 

25 

Finally, the verification means 106 examines 
the relation (9). 

30 C mod n = R ^ mod n (9) 

If the relation (9) holds, the verification means 
invokes the execution means 107. The execution 
means 107 provides a user with utilities that he/she 
35 wanted to access to. Othenwise. it invokes the error., 
trapping means 108. The error trapping means 108 
may deny user access by terminating the execu- 
tion. 

40 Second Embodiment 

A second embodiment to be described is the same 
as the first embodiment regarding the definition of an 
access ticket t and the function of the proving device. 

45 However, the verification device works differently. The 
difference in the roles between challenging data C and 
a response R causes the difference in the function 
between the two embodiments; in the first emtKxJiment. 
a response R is encryption of a random challenging 

50 data C; in the second emtxxjiment. a response R will be 
decryption of challenging data C which is encryption of 
some other meaningful data. 

Fig. 5 depicts the constitution of devices of the sec- 
ond embodiment, and Fig. 6 depicts flow of data. A ver- 

55 iffcation device 10 comprises the following means: an 
access ticket public key storing means 101; a random 
number generation means 102; a random number stor- 
ing means 103; a response storing means 105; a rand- 
omizing means 121; a challenge seed storing means 
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122; a de-randomizing means 123: and an execution 
means 310. A proving device 11 comprises the follov^- 
ing means: a challenging data storing means 1 1 1 : a first 
calculation means 102; an access ticket storing means 
1 13; a second calculation means 114; a user identifying 5 
information storing means 1 15; and a response genera- 
tion means 116. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 10 

1 . The verification device 1 0 is invoked by a user. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 
storing means 1 1 1 of the proving device 11 . The 15 
modulus n is stored in the access ticket public key 
storing means 101. On the other hand, challenging 
data C is generated by carrying out the following 
steps: the random number generating means 102 
generates a random integer r so that r and the mod- 20 
ulus n are relatively prime (gcd (r. n) = 1 ); the ran- 
dom Integer r is stored in the random number 
storing means 103; the randomizing means 121 
generates challenging data C according to the rela- 
tion (10). 25 

C = r^C'modn (10) 



The integer C is stored in the challenge seed 30 
storing means 122. and satisfies the relation (11) 
for some data K. 

C' = K^modn (11) 

35 

The exponent E (access ticket public key) and 
the modulus n are both stored In the access ticket 
public key storing means 101. 

The verification device 10 retains encryption C 
of K instead of K Itself. In fact, C* is RSA encryption 40 
of K with a public key E and a modulus n. This has 
an advantage In the viewpoint of security: the data 
K crucial for authentication procedures never leaks 
from the verification device 10. The randomness of 
r also plays an important role: If r were Identical to 45 
some secret constant, the challenging data C would 
be encryption of the data K up to a constant coeffi- 
cient, and therefore the response which the proving 
device 1 1 generates would be K up to a constant 
coefficient; thus, constant r would allow replay 50 
attacks since communication between the verifica- 
tion device 10 and the proving device 1 1 would be 
always identical. In this embodiment, by generating 
challenging data C so that it is dependent on a ran- 
dom number r (see the relation (10)). communica- 55 
tion between the verification device 10 and the 
proving device 1 1 occurs with variation, and there- 
fore attempts of replay attacks become hopeless. 
3. The first calculation means 112 of the proving 



device 11 calculates an intermediate result R* 
according to the relation (12). 

R* = C'modn (12) 



In course of calculation, the means uses the 
access ticket t stored in the access ticket storing 
means 1 1 3. 

4. The second calculation means 1 1 4 of the proving 
device 11 calculates a differential S according to 
the relation (13). 

S = C®modn (13) 



In course of calculation, the means uses the 
user identifying information e stored in the user 
identifying information storing means 115. 

5. Receiving the Intermediate result R' and the dif- 
ferential S from the first calculation means 112 and 
the second calculation means 114, the response 
generation means 116 of the proving device calcu- 
lates a response R according to the relation (14), 

R = R'Smodn (14) 

6, The proving device 11 returns the generated 
response R to the response storing means 307 of 
the verification device 10. 

7 The de-randomizIng means 123 of the verifica- 
tion device 1 0 calculates K' according to the relation 
(15). 

K'^r'^Rmodn (15) 



In course of calculation, the means uses the 
random number r stored in the rarxlom number 
storing means 103 and the response R stored in 
the response storing means 105. Note that the val- 
ues K' and K are Identical with each other, if and 
only if the proving device 11 calculated the 
response R based on a right pair of an access ticket 
t and a user identifying information e. 

Finally, the de-randomizing means 1 23 sends 
K' to the execution means 310, and the execution 
means 310 executes predefined procedures using 
this given K*. The execution means 310 is designed 
so that It works properly only when K' is Identical 
with K; otherwise it fails to work. 

The following paragraphs describes several exam- 
, of implementation of the execution means 310. 

1. Fig. 7 depicts a first example, A memory means 
310 a of the execution means 310 retains the data 
K. Receiving K* from the de-randomizing means 
123. a comparison means 3 10b directly examines 
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the equality K = K* . If the equality does not hold, 
the execution means 310 suspends its performance 
immediately. Otherwise, the execution means 310 
continues its performance and provides users with 
utilities. This example includes the disadvantage 5 
caused from the fact that the data K critical for 
authentication procedures appears as it is in the 
device: when a computer program to be installed 
and executed on a user's PC or workstation is 
implemented on the execution means 310, it is not w 
impossible for a user to find out the value K by ana- 
lyzing the code of the application program. The 
value K is crucial, because, if once the user knows 
the value of K, and further if he/she can predict ran- 
dom number sequences to be generated by the 15 
random number generation means 102. he/she can 
construct a device simulating the proving device 10 
without any of an access ticket and a user identify- 
ing information e. In other words, anybody could 
pass the authentication check by the verification 20 
device 10 with this simulator, whether he/she is 
authorized or not. 

2. Fig. 9 depicts a second example. In this example, 
a memory means 310a retains h(K). instead of K. 
which is a value obtained by applying a one-way 25 
hash function h to K. A significant property of one- 
way hash functions is that it is computationally 
impossible to calculate x satisfying y = h(x) given y 
Receiving K* from a de-randomizing means 123. a 
hashing means 310c calculates h(K') which is the 30 
result of applying the one-way hash function h to K'. 

Then, the comparison means 310b examines 
the identity of this h(K ) and the value stored in the 
memory means 310a (= h(K)). Compared with the 
first exarrtple. this example is safer since there is no 35 
effective means to find out the critical data K: even 
though a user succeeded in analyzing the code of 
the program constituting the execution means 310. 
he/she couldn't find out any more than the value of 
h(K); due to the property of one-way hash tunc- 40 
tions. it is computationally impossible to calculate K 
given h(K). However, when the execution means 
310 is implemented as a conputer program, the 
comparison means 310b may be represented as an 
if-clause. If the verification device is further 45 
assumed to be executed on a user's PC or worksta- 
tion, a user may have a chance to modify the code 
so that the if-clause shall be always skipped. 

Therefore, the implementation of the this exam- 
ple is not safe enough, in particular, if the execution so 
means 310 is implemented as a computer program 
to be executed on a user's PC or workstation. 

3. Fig. 1 1 depicts a third example. This time, protec- 
tion is applied such that execution of the program of 
the execution means 310 becomes impossible by 55 
encrypting a portion or the whole of the code of the 
program. The encrypted code is stored in the chal- 
lenge seed storing means 122 as a seed C for 
challenging data C. More precisely, the crucial data 



K is program code to be encrypted, and C" is RSA 
encryption of the code K with a public key E and a 
modulus n (C = KE mod n ). Both E and n are the 
values stored in the access ticket public key storing 
means 101. The execution means 310 includes a 
code storing means 31 Od. a code loading means 
31 Oe and a code execution means 31 Of. The code 
loading means 310e feeds K'. which the code stor- 
ing means 3 1 0d received from the de-randomizing 
means 123. to the code execution means 31 Of. 
Only when K' is identical with K. the code fed to the 
code execution means 31 Of is meaningful as a part 
of the program of the execution means 310. In the 
following, a more detailed description of the compo- 
sition is provided. Consider the case where the exe- 
cution means 310 is implemented as a computer 
program executed on a user's PC or workstation. 
The code storing means 310d is a specified region 
within a memory of a user's PC. 

The code execution means 31 Of comprises the 
CPU and OS of the PC. The CPU and OS. cooper- 
ating with each other, fetch instructions form a cer- 
tain predefined region within the memory space 
(called program region), and executes those 
instructions one by one. Generally speaking, a 
meaningful chunk of instructions is called a pro- 
gram, and a program is located within the program 
region. The entity of the code loading means 310e 
is a part of the program constituting the execution 
means 310. and it is to be executed at first when the 
execution means 310 is invoked. When invoked, the 
code loading means 31 Oe orders the code execu- 
tion means 31 Of to copy the content stored in the 
code storing means 310d onto a specified area 
within the program region, and then orders the code 
execution means 310f to execute the copied 
sequence of instructions by issuing a JMP com- 
mand, for example. 

Thus, since a part or the whole of the code of 
the program of the execution means 310 is 
encrypted, and further since it is decrypted tempo- 
rarily only when the verification device 10 and the 
proving device 1 1 cooperate with each other prop- 
erly, the execution means 310 is much safer than in 
the cases of the preceding two examples: even 
though a user succeeded in analyzing the program, 
he/she couldn't obtain the missing code K at all; 
modifying the code of the program without the 
knowledge about K is definitely no use. 
4. Fig. 13 depicts a fourth example. This example is 
substantially the same as the third example except 
that K is the encryption key used in encrypting code 
of the program constituting the execution means 
310. while K is the code itself in the previous exam- 
ple. Since the code to be encrypted may be of large 
size, according to the composition of the third 
example, the size of K (namely, that of C* and C) 
may be large enough to make the performance of 
the verification device 10 arKi the proving device 1 1 
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worse. In contrast, according to the composition of 
the fourth example, the size of K (namely, that of C ) 
remains unchanged irrespective of the size of the 
program code to be encrypted: the size of K is 
determined by the cipher algorithm to be used; if 5 
DES (Data Encryption Standard) is used. K is 
always 64 (56) bits long even when the size of the 
code to be encrypted is measured by Mbyte. 

The execution means 310 comprises an 
encrypted code storing means 310g, a decryption 10 
means 310h, a code loading means 3101. and code 
execution means 31 Of. Receiving the data K' from 
the de-randomizing means 123, the decryption 
means 310h decrypts the content stored in the 
encrypted code storing means 3 1 0g. In the process 15 
of decryption. K' is used as a decryption key. The 
code loading means 3101 loads the output of the 
decryption means 31 Oh. which is decrypted code if 
K* is identical with K. onto a specified area within 
the program region, and then orders the execution 20 
means 31 Of to execute the loaded code. 

Third Embodiment 

In a third embodiment, the definition of an access 25 
ticket is given as the relation (16). 

t = D +F(n. e) (16) 

The following bulleted paragraphs illustrate the 30 
symbols appearing in the relation (16). 

An integer n is an RSA modulus, hence, a product 
of two very large prime numbers p and q (n = pq ). 
^ (n) denotes the Euler number of n, hence, a prod- 35 
uct of two integers p-1 and q-1 (<i> (n) = (p-1)(q-1) ). 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
e is unique to each user: 

A different user identifying information is allocated 40 
to a different user. 

An access-ticket secret key D is the private key of 
an RSA public key pair. Since the assumed modu- 
lus is n. D satisfies the relation (1 7). 

45 

gcd(D. <|>{n)) = 1 (17) 

In the above, gcd(x. y) denotes the greatest com- 
mon divisor of two integers x and y. The existence 
of an integer E satisfying the relation (18), which is so 
called an access-ticket public key. is derived form 
the relation 1 7. 

ED mod (t> (n) = 1 (18) 

55 

A two variable function F(x. y) is an arbitrary colli- 
sion-free function. Practically, a collision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (19). 



F(x. y) = h(x |y) (19) 

Figs. 15 and 16 are for depicting this embodiment: 
Fig. 15 depicts the constitution of the devices of this 
embodiment; Fig. 16 depicts flow of data. 

In Fig. 15. a proving device 11 comprises a chal- 
lenging data storing means ill. a first calculation 
means 1 12. an access ticket storing means 1 13. a sec- 
ond calculation means 114. a user identifying informa- 
tion storing means 1 1 5. a response generation means 
1 16. and an exponent generation mear^ 130. A verrfica- 
tion device 10 in this embodiment may be identical with 
that in any of the first errtoodiment (shown in Fig. 3) or 
the second embodiment (shown in Fig. 5). 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

1. The verification device 10 is invoked by a user. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 
storing means 111 of the proving device 11. The 
modulus n is stored in the access ticket public key 
storing means 101, and the challenging data C is 
generated in one of the manners defined in the first 
embodiment or the second embodiment: C is iden- 
tical with either r^ mod n or r^C mod n. 

3. The first calculation means 112 of the proving 
device 11 calculates an intermediate result R' 
according to the relation (20). An access ticket t to 
be used is stored in the access ticket storing means 
113. 

R'=C*modn (20) 

4. The exponent generation means 130 calculates 
F(n, e) by applying the collision-free function F to 
the modulus n, stored in the challenging data stor- 
ing means 1 1 1 ..and the user identifying information 
e, stored in the user identifying information storing 
means 1 1 5. 

F(n.e) (21) 

5. Receiving the result from the exponent genera- 
tion means 130. the second calculation means 114 
of the proving device 1 1 calculates a differential S 
according to the relation (22). 

S = C''t"*^'modn (22) 

6- Receiving R' and S from the first calculation 
means 1 12 and the second calculation means 1 14. 
the response generation means 1 1 6 of the proving 
device calculates a response R according to the 
relation (23). 

R = RS'^ modn (23) 
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In the relation (23). S'^ denotes the reciprocal 
of S under the modulus n. Hence. S and S*^ satisfy 
the relation (24). 

SS'^modn = 1 (24) 

7. The proving device 11 returns the generated 
response R to the response storing means 105 of 
the verification device 10. 

8. The verification device 10 examines the 
response received from the proving device 1 1 . 

Fourth Embodiment 

In a fourth embodiment, a proving device 1 1 com- 
prises a computer program executed on a user's PC or 
workstation, a smart card or PC card (PCMCIA card) 
attachable to the user's PC or workstation, and a pro- 
gram executed on this smart card or PC card. 

As is obvious from the explanation of the former 
three embodiments, a user identifying information e, 
stored in a user identifying information storing means 
115. must be kept secret to others. Furthermore, 
observing process of execution of a second calculation 
means 114. which needs e as an input to itself, may 
lead to leak of e. The same situation applies to an expo- 
nent generation means 130. Consequently, in practical 
use, the user identifying information storing means 115. 
the second calculation means 114 and the exponent 
generation means 130 should be protected by some 
means against attempts to pry out some crucial secret 
out of them. 

One solution is confining the crucial part of the 
proving device 1 1 within hardware equipped with func- 
tion to prevent its inside from being observed or tam- 
pered with by unauthorized means. Generally, such 
hardware is called tamper-resistant hardware. 

In creating the tamper-resistant hardware, it is pos- 
sible to use the technology disclosed in Patent Number 
1 .863,953. Patent Number 1 .860.483 or Japanese Laid- 
Open Patent Publication 3-100753. for example. In Pat- 
ent Number 1.863,953. an enclosure composed of a 
plurality of cards having multi-layered conductive pat- 
terns is provided surrounding an information memory 
medium. Memory information is destroyed when the 
conductive pattern which is detected differs from an 
expected pattern. 

In Patent Number 1,860.463.. a detection circuit 
conposed of an integration circuit or the like is provided 
surrounding an information memory medium in addition 
to a conductive winding being formed, and through this, 
when there is infiltration to the electronic circuit region, 
fluctuations in electromagnetic energy are detected and 
memory information is destroyed. 

In Japanese Laid-Open Patent Publication 3- 
100753. an optical detector is provided within hardware, 
and the optical detector detects external light which 
enters when a force is applied which destroys the hard- 



ware or punctures the hardware, and a memory 
destruction device resets memory information. 

Further, choosing tamper-resistant hardware with 
portability such as a smart card or PC card may provide 

5 users with additional merits. Among information dealt 
with by a proving device 1 1 . only an access ticket and a 
user identifying information are unique to an individual 
user. Hence, for example, it may be useful to confine a 
user identifying information storing means 115. access 

10 ticket storing means 113. a second calculation means 
1 14 and exponent generation means 130 within a smart 
card or PC card, and implement the rest of the proving 
device 10 as a program to be executed on an arbitrary 
PC or workstation: a user can use an arbitrary PC or 

15 workstation, assuming that the program is installed on 
it. as his/her proving device only by inserting his/her 
own smart card or PC card into the computer. 

Rg, 1 7 depicts constitution of a proving device 1 1 of 
the first and second emtxxliments when a user identify- 

20 ing information storing means 1 1 5 and a second calcu- 
lation means 1 14 are confined within a smart card. 

Fig. 18 depicts constitution of a proving device 1 1 of 
the third embodiment when a exponent generation 
means 130 in addition to a user identifying information 

25 storing means 1 1 4 and a second calculation means 1 14 
is confined within a smart card. 

For both Figs. 1 7 and 18. a card-side l/F means 141 
within a smart card is an interface to a host computer for 
communication between a host computer and the smart 

30 card. More practically, the card-side l/F means 141 
comprises buffer memory and a communication pro- 
gram. 

A host-side l/F means 140, which is a part of a host 
computer, is the counter part of the card-side l/F means 
35 141. Both l/F means, cooperating with each other, 
transfer messages from the host computer to the smart 
card, and vice versa. 

The following numbered paragraphs describe the 
function of the means constituting the devices. 

40 

1 - The verification device 1 0 is invoked by a user. 

2. The verification device 10 sends challenging 
data C arxJ a modulus n stored in the access ticket 
public key storing means 101 to the challenging 

45 data storing means 1 1 1 of the proving device 1 1 . 

3, The host-side t/F means 140 of the proving 
device 10 sends the challenging data C and the 
modulus n to the card-side l/F means 141 within the 
smart card. 

50 4, The access ticket searching means 142 retrieves 
an access ticket t corresponding to the modulus n 
that is stored in the challenging data storing means 
111. As shown before, in any of the former three 
embodiments, the definition of an access ticket t 

55 involves a modulus n (t = D - e -i-co <^ (n) or 
t = 0 + F(n, e) ). In the access ticket storing means 
113. zero or more access ticket are stored, and 
each access ticket is indexed with the modulus that 
was used in generating the access ticket. 
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5. The first calculation means 1 1 2 of the proving 
device ii calculates an intermediate result R' 
according to the relation (25). 

An access ticket t is stored in the access ticket stor- 
ing means 113. 5 

R=C*modn (25) 

6. The host-side l/F means 140 issues a require- 
ment for a differential S to the card-side l/F means w 
141. A response which the host-side l/F means 140 
receives is a differential S of one of the following 
forms: if the access ticket t and the means within 

the smart card were implemented in the manner of 
the first and second embodiments, the differential S is 
satisfies the relation (26); if the access ticket t and 
the means within the smart card were implemented 
in the manner of the third embodiment, the differen- 
tial S satisfies the relation (27). 

20 

S = C®modn (26) 
S = c''^"'^^modn (27) 

7. The response generation means 1 1 6 of the prov- 25 
ing device 1 1 calculates a response R according to 
either the relation (28) or (29): if the access ticket t 
and the means within the smart card were imple- 
mented in the manner of the first and second 
embodiments, the relation (28) shall be applied; if 30 
the access ticket t and the means within the smart 
card were implemented in the manner of the third 
embodiment, the relation (29) shall be applied. 

R = R'S mod n (28) 35 

R = R'S"^modn (29) 

8. The proving device 11 returns the generated 
response R to the response storing means 307 of 4o 
the verification device 10. 

In this embodiment, it is possible to calculate the 
intermediate result R' and the differential S concurrently, 
because the former Is calculated witiiin the host compu- 45 
ter and the latter is within the smart card. Obviously, this 
concurrent calculation reduces the total time which the 
proving device 1 1 needs for calculating a response to a 
received challenging data. 

Further, in this embodiment, the access ticket stor- so 
ing means 113 may retain more tiian one access tick- 
ets, and the access ticket searching means 142 
retrieves an appropriate access ticket using a modulus 
issued by the verification device 10 as a key for retiieval-. 
Basically, different verification device, which may be 55 
embedded within a different application program or 
server program, should assume a different modulus. 
Therefore, a user who want to access to more than one 
application programs or server programs is obliged to 



22 

have a number of access tickets. 

The stated function of the access ticket searching 
means 142 would release a user from paraphernalia of 
selecting a correct access ticket by himself. 

Fifth Embodiment 

In a fifth embodiment, the Pohlig-Hellman asym- 
metric key ayptography is used instead of the RSA 
public key cryptography. 

In this embodiment, the definition of an access 
ticket t is given as the relation (30). 

t = D + F(p. e) (30) 

The following bulleted paragraphs illustrate the 
symbols appearing in the relation (30). 

An integer p is a very large prime number. 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
e is unique to an individual user: a different user 
identifying information is allocated to a different 
user. 

An access ticket secret key D is one component of 
a Pohlig-Hellman asymmetric key pair. Since the 
assumed modulus is p, D satisfies the relation (31). 

gcd(D. p-1) = 1 (31) 

In the above, gcd(x. y) denotes the greatest com- 
mon divisor of two integers x and y The existence of an 
integer E satisfying the relation (32), which is called an 
access-ticket public key. is derived from the relation 
(31). 

ED mod p-1 = 1 (32) 

A two variable function F(x. y) is an arbitrary colli- 
sion-free function. Practically, a coliision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (33). 

F(x. y) = h(x I y) (33) 

Figs. 20 and 21 are for depicting this embodiment: 
Fig. 20 depicts the constitution of the devices of this 
embodiment; Fig. 21 depicts flow of data. In Fig. 20, a 
proving device 41 comprises the following means: a 
challenging data storing means 411; a first calculation 
means 412; an access ticket storing means 413; a sec- 
ond calculation means 414; a user identifying informa- 
tion storing means 415; a response generation means 
416; and an exponent generation means 430. On the 
other hand, a verification device 40 comprises the fol- 
lowing means: a key storing means 401; a random 
number generation means 402; a random number stor- 
ing means 403; a response storing means 405; a rand- 
omizing means 421; a challenging seed storing means 
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422: a de-randomizing means 423: and an execution 
means 310. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 



C = r^C'modp (34) 



The integer C is stored in the challenge seed 30 
storing means 422, and satisfies the relation (35) 
for some data K. 

C' = K^modp (35) 

35 

The exponent E (access ticket public key) and 
the modulus p are both stored in the key storing 
means 401 . 

3. The first calculation means 412 of the proving 
device 41 calculates an intermediate result R' 40 
according to the relation 36. 

An access ticket t to be used is stored in the access 
ticket storing means 113. 

R' = C*modp (36) 45 

4. The exponent generation means 430 calculates 
F(p. e) by applying the collision -free function F to 
the modulus p. stored in the challenging data stor- 
ing means 111. and the user identifying information so 
e, stored in the user identifying information storing 
means 415. 

F(p. e) (37) 

55 

5. Receiving the result from the exponent genera- 
tion means 430, the second calculation means 414 
of the proving device 41 calculates a differential S 
according to the relation (38). 



S^C'^'P-^^modp (38) 

6. Receiving R* and S from the first calculation 
means 412 and the second calculation means 414. 
the response generation means 416 of the proving 
device 41 calculates a resp>onse R according to the 
relation (39). 

R = RS"'modp (39) 

In the relation (39). S'^ denotes the reciprocal 
of S under the nnodulus p. Hence. S and S'^ satisfy 
the relation (40). 

SS'^modp=l (40) 

7. The proving device 41 returns the generated 
response R to the response storing means 405 of 
the verification device 40. 

8. The de-randomizing means 423 of the verifica- 
tion device 40 calculates K* according to the relation 
(41). 

K' = r'^Rmodp (41) 



In course of calculation, the means uses the 
rarxJom number r stored in the random number 
storing means 403 and the response R stored in 
the response storing means 405. 

Sixth Embodiment 

A sixth embodiment is substantially similar to the 
third en^x>diment except that the EIGamal public key 
cryptography is used this time instead of the RSA public 
key cryptgraphy. In this embodiment, the definition of an 
access ticket t is given as the relation (42). . 

t = X + F(p. e) (42) 

The following bulleted paragraphs illustrate the 
symbols appearing in the relation (42). 

An integer p is a very large prime number. 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
is unique to an individual user: a different user iden- 
tifying information is allocated to a different user. 
Let (X. Y) be an arbitrary .EIGarnal asymmetric key 
pair assuming p is the modulus. Therefore the rela- 
tion (43) is satisfied. 

Y = G ^ mod p (43) 

In the relation (43). G denotes an integer represent- 
ing a generator of the multiplicative groi^D of the finite 
field of order p. 



1 . The verification device 40 is invoked by a user. 

2. The verification device 40 sends challenging 
data C and a modulus p to the challenging data 
storing means 411 of the proving device 41, The w 
nrxxlulus p is stored in the key storing means 401 . 

In this embodiment, the challenging data C is 
assumed to be generated in a manner similar to 
that in the second embodiment. However, it is easy 
to construct another embodiment such that chal- is 
lenging data C is generated in a manner similar to 
that in the first embodiment. The challenging data C 
in this embodiment is generated by carrying out the 
following steps: the random number generating 
means 402 generates a random integer r so that r 20 
and the modulus p are relatively prime 
(gcd(r. p) = 1 ); the random integer r is stored in the 
random number storing means 403; and the rand- 
omizing means 121 generates challenging data C 
according to the relation (34). 25 
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Equivalent! y. G satisfies the relations (44) and (45). 

G > 0 (44) 

min { x>0 | G ^ = 1 mod p) = p - l (45) 5 

X is called an access ticket secret key. while Y is 
called an access ticket public key. 
A two variable function F(x. y) is an arbitrary colli- 
sion-free function. Practically, a collision-free tunc- io 
tion may be constructed using a one-way hash 
function h as the relation (46). 

F{x. y) = h(x I y) (46) 

75 

Figs. 22 and 23 are for depicting this embodiment: 
Fig. 22 depicts the constitution of the devices of this 
embodiment; Fig. 23 depicts flow of data. 

In Fig. 22, a proving device 51 comprises the follow- 
ing means: a challenging data storing means 51 1 ; a first 20 
calculation means 512; an access ticket storing means 
513; a second calculation means 514; a user identifying 
information storing means 515; a response generation 
means 516; and an exponent generation means 530. 
On the other hand, a verification device 50 comprises 25 
the following means: an access ticket public key storing 
means 501 ; a random number generation means 502; a 
random number storing means 503; a response storing 
means 505; a randomizing means 521; a challenge 
seed storing means 522; a de-randomizing means 523: 30 
and an execution means 310. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

35 

1 . The verification device 50 is invoked by a user. 

2. The verification device 50 sends a pair (u, C) of 
challenging data and a modulus p to the challeng- 
ing data storing means 51 1 of the proving device 

51. The modulus p is stored in the access ticket 40 
public key storing means 501. On the other hand, 
the challenging data u and C is generated as fol- 
lows. The first component u is stored in the chal- 
lenge seed storing means 522, and satisfies the 
relation (47) for some secret random number z. 45 

u = G ^ mod p (47) 

In the challenge seed storing means 522. one so 
more seed C is stored. C satisfies the relation (48). 
for some crucial data K. (48) C = Y^K mod p 

Using this C* as a seed, the other component C 
is generated as follows. The random number gener- 
ating means 502 generates a random integer r so 55 
that r and the modulus p are relatively prime 
(god(r, p) = 1 ); the random integer r is stored in the 
random number storing means 503; the rarxJomiz- 
ing means 521 generates challenging data 0 



according to the relation (49). 

C = rC" mod p (49) 

3. The first calculation means 5i2 of the proving 
device 51 calculates an intermediate result S 
according to the relation (50). 

An access ticket t to be used is stored in the access 
ticket storing means 513. 

S = u * mod p (50) 

4. The exponent generation means 530 calculates 
F(p. e) by applying the collision-free function F to 
the modulus p. stored in the challenging data stor- 
ing means 51 1 . and the user identifying information 
e. stored in the user identifying information storing 
means 515. 

F(p. e) (51) 

5. Receiving the result from the exponent genera- 
tion means 530. the second calculation means 514 
of the proving device 51 calculates a differential S' 
according to the relation (52). 

S' = u ''^P- mod p (52) 

6. Receiving S and S' from the first calculation 
means 512 and the second calculation means 514, 
the response generation means 516 of the proving 
device 51 calculates a response R according to the 
relation (53). 

R = S'^SCmodp (53) 

In the relation (53), S'^ denotes the reciprocal 
of S over the modulus p. Hence. S and S'^ satisfy 
the relation (54). 

SS"^modp = 1 (54) 

7. The proving device 51 returns the generated 
response R to the response storing means 505 of 
the verification device 50. 

8. The de-randomizing means 523 of the verifica- 
tion device 50 calculates K' according to the relation 
(55). 

K' = r'^Rmodp (55) 



In course of calculation, the means uses the 
random number r stored in the rarxfom number 
storing means 503 and the response R stored in 
the response storing means 505. 

The straightforward implementation of the above 
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constitution would involve the following problem: use of 
a common pair of seeds for challenging data (u. C) for 
more than one occurrences of authentication allows an 
attacker to construct a device which emulates the prov- 
ing device 1 1 without the user identifying information or 5 
the access ticket. To construct such an emulator. 
H = RC-1 mod p is recorded first where C is the chal- 
lenging data at the first occurrence of authentication 
and R is the response to C calculated by the proving 
device 11. The emulator retains this H instead of the w 
user identifying information e and the access ticket t. 
and on arbitrary input (u. C) issued by the verification 
device 10. returns to a response R calculated according 
to the relation R = HC mod p . Thus, the verification 
device 10 should have pairs of seeds (u^, C) as many 15 
as necessary, and should use distinct pair for distinct 
occurrence of authentication (Note that k for 
u = mod p is a random number). 

Seventh Embodiment 20 

A seventh emlxxltment exploits the EIGamal signa- 
ture rather than the RSA public key cryptography in the 
first three embodiments or the EIGamal public key cryp- 
tography in the sixth embodiment. 25 

In this embodiment, the definition of an access 
ticket t is given as the relation (56). 

t = X + F(p. e) (56) 

30 

The following bulleted paragraphs illustrate the 
symtK)ls appearing in the relation (56). 

An integer p is a very large prime number. 

A user identifying information e is an integer alio- 35 

cated to each user The user identifying information 

e is^ unique to an individual user: a different user 

identifying information is allocated to a different 

user 

Let (X, Y) be an arbitrary EIGamal asymmetric key 40 ' 
pair assuming p is the modulus. Therefore the rela- 
tion (57) is satisfied. 

Y = G ^ mod p (57) 

45 

In the relation (57), G denotes an integer represent- 
ing a generator of the multiplicative group of the finite 
field of order p. 

Equivalently. an integer G satisfies the relations 



(58) and (59). 50 
G > 0 (58) 
min { x>0 | G ^ = 1 mod p } = p - 1 (59) 

55 



X is called an access ticket secret key. while Y is 
called an access ticket public key. 

A two variable function F(x. y) is an arbitrary colli- 
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sion-free function. Practically, a collision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (60) shows. 

F(x. y) = h(x I y) (60) 

Rgs. 24 and 25 are for depicting this embodiment: 
Fig. 24 depicts the constitution of the devices of this 
embodiment; Fig. 25 depicts flow of data. 

In Fig. 24. a proving device 61 comprises the follow- 
ing means: a challenging data storing means 611; a 
random number generation means 612; a first calcula- 
tion means 613; a second calculation means 614; an 
access ticket storing means 615; and a user identifying 
information storing means 616. On the other hand, ver- 
ification device 60 comprises the following means: an 
access ticket public key storing means 601 ; a random 
number generation means 602; a random number stor- 
ing means 603; a response storing means 605; a verifi- 
cation means 606; a execution means 607; and an error 
trapping means 608. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

1 . The verification device 60 is invoked by a user. 

2. The verification device 60 sends challenging 
data C. a modulus p and a generator G to the chal- 
lenging data storing means 611 of the proving 
device 61, The modulus p and the generator G are 
stored in the access ticket public key storing means 
601 . On the other hand, the challenging data u and 
C are generated as follows: the random nun±>er 
generation means 602 generates a random integer 
r so that r and the modulus n are relatively prime 
(gcd(r. n) = 1 ); the generated random integer r is 
stored in the randorn number storing means 603; 
finally, the random number generation means 602 
sets the value of C to r. As stated later in more 
detail, the response which the proving device 61 is 
to respond to the verification device 60 is EIGamal- 
signature of r with X as the signature key and p as 
the modulus. 

3. The random number generation means 612 of 
the proving device 61 generates a random integer k 
so that k and p are relatively prime (gcd(k. p) = 1 ). 
Receiving the random integer k from the random 
number generation means 612 and the modulus p 
and the generator G from the challenging data stor- 
ing means 61 1 . the first calculation rneans 613 cal- 
culates a first component R of a- response 
according to the relation (61): 

R = G*'modp (61) 

Concurrently, the second calculation means 
614 calculates a second component S of a 
response according to the relation (62). 
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S = (C - R (t - F{p. e)))k'^ mod p - ^ (62) 

The access ticket t is stored in the access ticket 
storing means 615. and the modulus p and the 
challenging data C are stored in the challenging 5 
data storing means 611. 

4. The proving device 61 returns the generated 
response R to the response storing means 605 of 
the verification device 60. 

5. The verification means 606 of the verification w 
device 60 examines the relation (63). 

G' = Y"R^modp (63) 

The random integer r is stored in the random 75 
number storing means 603; the response pair (R, 
S) is stored in the response storing means 605; the 
modulus p. the access ticket public key Y and the 
generator G are all stored in the access ticket public 
key storing means 601 . 20 

Eighth Embodiment 

An eighth embodiment provides an example of 
spedfication for ways how to generate access tickets 25 
safely. 

In any case of the previous embodiments, access 
tickets are calculated as output of a predefined function 
on input of specific secret information, namely user 
identifying information and access ticket secret keys. 30 
Since leak of that secret information threatens the 
safety of the entire scheme of authentication, a safe 
device may be necessary in generating access tickets. 

Such a device is required to provide the function 
which absolutely prevents leakage of the secret irrfor- 35 
mation contained within it or results of calculations car- 
ried out within it. . 

One of the simplest ways to constitute such a safe 
device is to implement services of generating and issu- 
ing access ticket to users on an isolated computer kept 40 
safe from any attenpts at illegal accesses by users: in 
order to protect that server computer against physical 
accesses by users, the computer should be placed in a 
room entry into which is severely controlled; further, if 
the server computer is networked with users' PCs and 45 
access tickets are issued to users on network, the threat 
of attacks via network should be taken into account; in 
protecting the server computer from those network 
attacks, the firewall technology (for details see "Building 
Internet Firewalls" by D. Brent Chapman arxJ Elizabeth so 
D. Zwicky. O'Reilly & Associates, Inc.) may be useful. . 

As shown in the previous embodiments, an access 
ticket is generated so. that only the user to whom the. 
ticket is issued can use it. Speaking more accurately, a 
user may succeed in authentication procedure between ss 
a verification device and a proving device if and only if 
he is able to feed to the proving device both an access 
^ ticket and user identifying information t>ased on which 
the access ticket has been generated. 



Moreover, access tickets stated in the previous 
embodiments satisfy a stricter standard of safety: there 
is no way to forge an access ticket or to construct a 
device which emulates the proving device even though 
an attacker is assumed to be aUe to collect an arbitrary 
number of access tickets issued by legitimate access 
ticket issuers. 

The fact that access ticket satisfies the above 
standard implies that access tickets are safe enough to 
be conveyed to users by relatively insecure means like 
electronic mails on Internet. 

Ninth Embodiment 

A ninth embodiment uses a composition method for 
an access ticket and user identifying information differ- 
ing from those of the previous embodiments: this 
method is different from those of the previous embodi- 
ments in that the public information associated with user 
identifying information is used instead of the user iden- 
tifying information itself in generating an access ticket. 

Therefore, according to the method stated below, a 
safe access ticket issuing server stated in the eighth 
embodiment is not necessary: a user is allowed to gen- 
erate an access ticket with a program executed on his 
own PC or workstation. That program doesn't contain 
any secret information or any secret algorithm. 

The identifying information of a user U is the private 
key du of an RSA put^lic key pair. By (eu, n^). the public 
key corresponding to the private key du is denoted. 
Hence, n ^ = p u for two distinct large prime num- 
bers Pu and qy. and dy and are integers determined 
so as to satisfy the relations (64). 

1 <{Pu-1)(qu-'') (&4) 

e^6yj - 1 mod(Py-1)(qu-1) 

Hereafter, the condition that nu is at least as large 
as a constant N common to all users is further 
assumed. 

An access ticket for a user U is composed as fol- 
lows: the public key (E. n) of an RSA public key pair is 
taken to be the public key of the access ticket to be gen- 
erated; the private key D which is paired with this public 
key (E, n) is taken to be the secret key of the access 
ticket; when the prime factorization of n is n =:= pq , the 
relations 65 is established; finally, the access ticket ty is 
defined by the relation (66). 

1 ^.D < N (65) 

DE - 1 mod (p- 1)(q- 1) 

t(j = D® (J "^ocl "u (^^) 
In the above composition, the unique security char- 
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acteristic information for authentication process is the 
private key D. Same as the cases in the previous 
embodiments, a user succeeds in authentication proce- 
dures if and only it he is able to prove that he has means 
to calculate a right response to challenging data issued 5 
to him by a verification device: the calculated response 
is right only when it is calculated based on the unique 
security characteristic information D. 

The conposition method presented in this embodi- 
ment is characterized by the property that an access w 
ticket is encryption of the unique security characteristic 
information D and the user identifying information is the 
unique decryption key to obtain D from the access 
ticket. In addition, since the user identifying information 
is the private key of an RSA key pair, anytxxly who is is 
allowed to know the public key paired with the private 
key can generate an access ticket for the user at will. 

Hereafter, the device composition and operation of 
the proving device 71 are described with reference to 
Fig. 26- 20 

1 . A verification device 1 0 sends challenging data C 
to a challenging data storing means 711 of a prov- 
ing device 71 , 

2. A deayption key generation means 712 of the 25 
proving device 71 acquires user identifying informa- 
tion dy which is stored in a user identifying informa- 
tion storing means 715 and an access ticket ty 
which is stored in an access ticket storing means 
713. and then calculates D' according to the rela- 30 
Won (67). 

D' = tu "^"^ modn^^ (67) 

3. On input of D' calculated by the decryption key 35 
generation means 712 and the challenging data C 
stored in the challenging data storing means 71 1 . a 
response generation means 714 of the proving 
device 71 calculates a response R according to the 
relation (68). The calculated response R is returned 40 
to the verification device 10. 

R = C °' mod n (68) 

4. The verification device 10 verifies the legitimacy 45 
of the response R. 

The access ticket secret key D in the definition of 
the access ticket 1^ = 0^^ modn^ must be kept 
secret to the user U. Therefore, the user identifying so 
information storing means 713, the decryption key gen- 
eration means 712 and the response generation means 
714 are to be incorporated in a defense means 760 
which is a tamper-resistant hardware. 

The same as the cases of the previous embodi- 55 
ments. the verification device authenticates access 
rights of the user if and only if he has the right pair of the 
ticket tu and the user identifying information e. 



Tenth Embodiment 

A tenth embodiment is substantially the same as 
the ninth embodiment, except that a response R is cal- 
culated using a symmetric key cipher instead of using 
the RSA public key cryptography as in the ninth ennbod- 
iment and an access ticket is RSA-encryption of the 
decryption key (same as the encryption key) D of the 
symmetric key cipher. As the encryption key to generate 
the access ticket, the public key (ey. riy) and the RSA 
algorithm is used. 

When the encryption function of the symmetric key 
encryption is expressed as Encrypt (key. plain mes- 
sage: the output of this function being the cipher mes- 
sage of the plain message which is the second 
argument of the function) and the decryption function is 
expressed as Decrypt (key cipher message: the output 
being the plain message corresponding to the cipher 
message which is the second argument of the function), 
the challenging data C is defined by relation (69). 

C = Enaypt (D. K) (69) 

Furthermore, the access ticket tU is defined by the 
relation (70). 

ty = D^"" modnu (70) 

Hereafter, the operation of the proving device 1 1 is 
described with reference to Fig. 26. 

1 . A verification device 1 0 sends challenging data C 
to a challenging data storing means 71 1 . 

2. A decryption key generation means 712 of the 
proving device 1 1 acquires user identifying informa- 
tion dy which is stored in a user identifying informa- 
tion storing means 715 and an access ticket ty 
which is stored in an access ticket storing means 
713, and then calculates D' according to the rela- 
tion (71). 

D* = tu'^^ mod nu (71) 

3. On input of D' calculated by the decryption key 
generation means 712 and the challenging data C 
stored in the challenging data storing means 71 1 , a 
response generation means 714 of the proving 
device 1 1 calculates a response R according to the 
relation (72). The calculated response R is sent 
back to the verification device 10. 

R = Decrypt (D' C) (72) 

4. The verification device 10 verifies the legitimacy 
of the response R. 

The foregoing description of preferred emtxxii- 
ments of this invention has been presented for pur- 
poses of illustration and description. It is not intended to 
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be exhaustive or to limit the invention to the precise form 
disclosed, and modifications and variations are possible 
in light of the above teachings or may be acquired from 
practice of the invention. The embodiments were cho- 
sen and described in order to explain the principles of 5 
the invention and its practical application to enable one 
skilled in the art to utilize the invention in various 
embodiments and with various modifications as are 
suited to the particular use contemplated. It is intended 
that the scope of the invention be defined by the claims w 
apperded hereto, and their equivalents. 

Claims 

1. A device for authenticating user's access rights to is 
resources comprising: 

first memory means 1 11 for storing challenging 
data 18: 

second memory means 1 15 for storing unique 20 
identifying information of the user 15; 
third memory means 1 1 3 for storing proof sup- 
port information 13 which is a result of execut- 
ing predetermined computations to the user 
unique identifying information 16 and unique 25 
security characteristic information of the device 
14; 

response generation means 1 16 for generating 
a response 19 from the challenging data 18 
stored in the first memory means 111, the 30 
unique identifying information of the user 16 
stored in the second memory means 1 15. and 
the proof support information 13 stored in the 
third memory means 113: and 
verification means 106 for verifying the legrti- 35 
macy of the response 19 by verifying that the 
response 19. the challenging data 18 and the 
unique security characteristic information of 
the device 14 satisfy a specific predefined rela- 
tion. 40 

2. The device for authenticating user's access rights 
to resources of claim 1 further comprising: 

protect means 160 for preventing any data 45 
inside from t^ing observed or being tampered 
with from the outside, at least confining the 
second memory means 1 15 and the response 
generation means 116. 

50 

3. The device for authenticating user's access rights 
to resources of claim 1 , wherein 

at least the second memory means 115 and 
the response generation means 116 are imple- 55 
mented within a small portable device such as 
a smart card. 

4. The device for authenticating user's access rights 



to resources of any of claims 1 through 3. wherein 

the response generation means 11 6 com- 
prises: 

first calculation means 712 for replaying the 
unique security characteristic information of 
the device 14 by executing predetermined cal- 
culations to the unique identifying information 
of the user 16 stored in the second memory 
means 115 and the proof support information 
13 stored in the third memory means 113; arvd 
secorxJ calculation means 714 for generating a 
response by executing predetermined calcula- 
tions to the challenging data 18 stored in the 
first memory means 1 1 1 and the unique secu- 
rity characteristic information of the device 14 
replayed by the first calculation means 712. 

5. The device for authenticating user's access rights 
to resources of any of claims 1 through 3. wherein 

the response generation means 116 com- 
prises: 

third calculation means 1 1 2 for generating first 
intermediate information by executing prede- 
termined calculations to the challenging data 
stored in the first memory means and the proof 
support information stored in the third memory 
means; 

fourth calculation means 114 for generating 
second intermediate information by executing 
predetermined calculations to the challenging 
data 18 stored in the first memory means 1 1 1 
and the user unique identifying information 16 
stored in the second memory means 115; and 
fifth calculation means 116 for generating a 
response by executing predetermined calcula- 
tions to the first intermediate information gen- 
erated by the third calculation means 112 and 
the second intermediate information generated 
by the fourth calculation means 1 14. 

6. The device for authenticating user's access rights 
to resources of claim 5. further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, at least confining the 
second memory means 1 1 5 and the fourth cal- 
culation means 114. 

7. The device for authenticating user's access rights 
to resources of claim 5. wherein 

at least the second memory means 115 and 
the fourth calculation means 114 are imple- 
mented within a portable device such as a 
smart card. 
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8. The device for authenticating user's access rights 
to resources of any of claims 1 through 7. wherein 



9. The device for authenticating user's access rights 
to resources of any of daims 1 through 7. wherein 



10. The device for authenticating user's access rights 
to resources of any of claims 1 through 7, wherein 30 



11. The device for authenticating user*s access rights 
to resources of daim 8 or 9, wherein 

the cipher function is of the asymmetric key 
cryptography, and 

the unique security characteristic information 
of the device 14 is one component of the key 
pair of the cipher function. 

12. The device for authenticating user's access rights, 
to resources of claim 1 1 , wherein 

the cipher function is of the public key cryptog- 
raphy, and 

the unique security characteristic information 
of the device 1 4 is the private key of the public 
key pair of the cipher function. 



13. The device for authenticating user's access rights 
to resources of claim 8 or 9. wherein 

the cipher function is of the symmetric key 
cryptography, and 

the unique security characteristic information 
of the device 14 is the common key of the 
cipher function. 

14. The device for authenticating user's access rights 
to resources of any of claims 1 through 13, further 
comprising: 

a proving device 11 having the first memory 
means 111, the second memory means 115. 
the third memory means 113 and the response 
generation means 116; and 
a verification device 10 having fourth memory 
means for storing the challenging data 18, fifth 
memory means 105 for storing the response 
19 and the verification means 106, wherein 
the verification device 10 transfers the chal- 
lenging data 18 stored in the fourth memory 
means to the first memory means 1 1 1 of the 
proving device 1 1 . the proving device 1 1 trans- 
fers the response 1 8 generated by the 
response generation means 116 to the fifth 
memory means 105 of the verification device 
10, and the verification means 106 of the verrfi- 
cation device 10 verifies the legitimacy of the 
response stored in the fifth memory means 
105. 

1 5. The device for authenticating user's access rights 
to resources of claim 14. wherein 

the unique security characteristic information 
of the device 14 is an encryption key of a cipher 
function, 

the verification device 10 comprises random 
number generation means 1 02 for generating a 
random number and for storing it in the fourth 
memory means, and 

the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response stored in the fifth memory means 105 
is identical with encryption of the challenging 
data stored in the fourth memory means 103 
with the encryption key. 

16. The device for authenticating user's access rights 
to resources of claim 14, wherein 

the unique security characteristic information 
of the device 14 is a decryption key of a cipher 
function, 

the verification device 10 comprises random 
number generation means 102 for generating a 
rarKJom number, sixth memory means 103 for 



the unique security characteristic information 
of the device 1 4 is a decryption key of a cipher 5 
function, 

the challenging data 18 is encryption of infor- 
mation using the cipher function with the 
encryption key corresponding to the decryption 
key, and 

the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response 19 generated by the response gener- 
ation means 1 16 is identical with decryption of 
the challenging data with the decryption key is 



the unique security characteristic information 20 
of the device 1 4 is an encryption key of a cipher 
function, and 

the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response 1 9 generated by the response gener- 25 
ation means 1 16 is identical with encryption of 
the challenging data with the encryption key. 



the characteristic information of the device 14 
is the signature key of a digital signature func- 
tion, and 

the verification means 106 verifies the legiti- 35 
macy of the response by verifying that the 
response 19 generated by the response gener- 
ation means 1 16 is identical with the digital sig- 
nature for the challenging data, which is 
calculated with the signature key. 40 
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storing the generated random number and sev- 
enth memory means 122 for storing a seed for 
challenging data, and wherein 
the random number generation means 102 
stores the generated random number in the s 
sixth memory means 103 while randomizing 
the seed for the challenging data stored in the 
seventh memory means 122 by executing pre- 
defined calculations to the random number 
stored in the sixth memory means 103 and the io 
seed stored in the seventh memory means 1 22 
and then storing the randomized seed as chal- 
lenging data in the fourth memory means, and 
the verification means 106 of the verification 
device 10 de-randomizes the response stored is 
in the fifth memory means 105 by executing 
predefined calculations to the random number 
stored in the sixth memory means 1 03 and the 
response stored in the fifth memory means 
1 05. and then verifies the legitimacy of the de- 20 
randomized response by verifying that the de- 
randomized result is identical with decryption of 
the seed stored in the seventh memory means 
1 22 with the decryption key which is the unique 
security characteristic information of the device 25 
14. 



17. The device for authenticating user's access rights 
to resources of daim 14. wherein 

30 

the unique security characteristic information 
of the device 14 is the signature key of a digital 
signature function, and 

the verification device 10 comprises random 
number generation means 1 02 for generating a 35 
random number and storing the generated ran- 
dom number as challenging data In the fourth 
memory means, and wherein 
the verification means 106 of the verification 
device 10 verifies the legitimacy of the 40 
response by verifying that the response stored 
in the fifth memory means 105 is identical with 
the digital signature for the challenging data 
stored in the fourth memory means, which is 
calculated with the signature key which is the 45 
unique security characteristic information of 
the device 14. 

18. The device for authenticating user's access rights 

to resources of claim 15. wherein 50 

the unique security characteristic information 
of the device 14 is the private key D of an RSA 
public key pair with a modulus n. and 
the verification means 106 verifies the legiti- 55 
macy of the response by verifying that the E-th 
power of the response R stored in the fifth 
memory means 105. where E denotes the pub- 
lic key associated with the private key D, is con- 



gruent with the challenging data C stored in the 
fourth memory means modulo n 
( R ^ mod n = C mod n ). 

1 9. The device for authenticating user's access rights 
to resources of claim 1 6. wherein 

the unique security characteristic information 
of the device 14 is the private key 0 of an RSA 
public key pair with a modulus n. 
a seed C for challenging data stored in the sev- 
enth memory means 122 is an RSA-encryption 
of data K with the public key E of the RSA pub- 
lic key pair ( DE mod <)) (n) = 1 , 
C'=r modn). 

a random number r generated by the random 
number generation means 102 is stored in the 
sixth memory means 103. 
challenging data C generated and stored in the 
fourth memory means satisfies the relation 
C = r mod n . and 

the verification means 106 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 105 by verifying that the quotient of 
R divided by r modulo n is congruent with the 
data K modulo n ( K mod n = r-1 R mod n ). 

20. The device for authenticating user's access rights 
to resources of claim 1 8 or 1 9, wherein 

a proof support information t 13 stored in the 
third memory means 113 satisfies the relation 
t=D-e-hw<t)(n), where e denotes user 
unique identifying information 1 6 stored in the 
second memory means 1 1 5. w denotes a con- 
flict-free random number determined depend- 
ent upon both n and e and <f( (n) denotes the 
Euler number of n. and 

the response generated by response genera- 
tion means 1 16 is identical with the D-th power 
of challenging data C stored in the first memory 
means 111 modulo n ( R = C ^ mod n ). 

21. The device for authenticating user's access rights 
to resources of claim 20, wherein 

the response generation means 116 further 
comprises: 

third calculation means 1 1 2 for calculating the 
t-th power of challenging data C stored in the 
first memory means 1 1 1 modulo n (C* mod n), 
where t denotes proof support information 13 
stored in the third memory means 113; 
fourth calculation means 1 14 for calculating the 
e-th power of the challenging data C modulo n 
(C^ mod n), where e denotes user unique iden- 
tifying information • 1 6 stored in the second 
memory means 115; and 
fifth calculation means 116 for calculating a 



20 



39 



EP 0 792 044 A2 



40 



response R by multiplying the result calculated 
by the third calculation means 1 12 by the result 
calculated by the fourth calculation means 1 14 
modulo n ( R = C *C ^ mod n ). 

22. The device for authenticating user's access rights 
to resources of claim 21 . further comprising: 



23- The device for authenticating user's access rights is 
to resources of claim 18 or 19. wherein 



24. The device for authenticating user's access rights 
to resources of claim 23. wherein 30 



25. The device for authenticating user's access rights 
to resources of claim 24. further comprising: 



means 1 14. 

26. The device for authenticating user s access rights 
to resources of claim 1 5. wherein 

the unique security characteristic information 
of the device 14 is a key D of a Pohlig-Hellman 
key pair of a modulus p. and 
the verification means 106 verifies the legiti- 
macy of the response by verifying that the E-th 
power of the response R stored in the fifth 
memory means 105. where E denotes the 
counterpart key of the key D 
(DE mod (p-1) = 1 ). Is congruent with the chal- 
lenging data C stored in the fourth memory 
means modulo p ( R ^ mod p = C mod p ). 

27. The device for authenticating user's access rights 
to resources of claim 16. wherein 

the unique security characteristic information 
of the device 14 is a key D of a Pohlig-Hellman 
key pair of a modulus p. 
a seed C for challenging data stored in the sev- 
enth memory means 422 is Pohlig-Hell man- 
encryption of data K with the counterpart key E 
of the key D (DE mod (p-1) = 1 . 
C'= modp). 

a random number r generated by the random 

number generation means 402 is stored in the 

sixth memory means 403. 

challenging data C stored in the fourth memory 

means satisfies the relation C = r^C mod p . 

and 

the verification means 106 verifies the legiti- 
macy of the response R stored In the fifth mem- 
ory means 405 by verifying that the quotient of 
R divided by r modulo p is congruent with the 
data K modulo p (K mod p = r'^fl mod p ). 

28. The device for authenticating user's access rights 
to resources of claim 26 or 27, wherein 

proof support information t 13 stored in the 
third memory means 413 satisfies the relation 
t = D + F(p. e) , where e denotes the user 
unique identifying information 16 stored in the 
second memory means 415. and F(x. y) 
denotes a two-variable collision -free function, 
and 

a response generated by the response genera- 
tion means 416 is identical with the D-th power 
. of challenging data C stored in the first memory 
means 41 1 modulo p ( R = C ^ mod p ). 

29. The device for authenticating user's access rights 
to resources of claim 28. wherein 

the response generation means 416 further 



protect means 160 for preventing any data 
inside from t^ing observed or being tampered 
with from the outside, confining the second 
memory means 115 and the fourth calculation 



protect means 160 for preventing any data 
inside from t>eing observed or being tampered io 
with from the outside, confining the second 
memory means 115 and the fourth calculation 
means 114, 



proof support information t 13 stored in the 
third memory means 1 13 satisfies the relation 
t = D + F(n. e) . where e denotes user unique 20 
identifying information 16 stored in the second 
memory means 115. and F(x. y) denotes a two- 
variable collision-free function, and 
a response generated by the response genera- 
tion means 1 16 is identical with the D-th power 25 
of challenging data C stored in the first memory 
means 1 1 1 modulo n ( R = C mod n ). 



the response generation means 116 further 
comprises: 

third calculation means 1 12 for calculating the 
t-th power of challenging data C stored in the 35 
first memory means 111 modulo n. where t 
denotes the proof support information 13 
stored in the third memory means 1 13 (C* mod 
n): - . 

fourth calculation means 1 1 4 for calculating the 40 
F(n, e)-th power of the challenging data C mod- 
ulo n (C*^(" ®) mod n), where e denotes the user 
unique identifying information 16 stored in the 
second memory means 115 and F(x, y) 
denotes a two-variable collision-free function; 45 
and 

fifth calculation means 116 for calculating a 
response R by dividing the result calculated by 
the third calculation means 112 by the result 
calculated by the fourth calculation means 114 so 
modulo n(Rr=C* C '^*"'^* modn). 
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comprises: 

third calculation means 4i2 for calculating the 
t-th power of challenging data C stored in the 
first memory means 411 modulo p. where t 
denotes the proof support information 13 5 
stored in the third memory means 413 (C' mod 
P): 

fourth calculation means 414 for calculating the 
F(p, e)-th power of the challenging data C mod- 
ulo p (C'^^P*®^ mod p). where e denotes the user io 
unique identifying information 16 stored in the 
second memory means 415 and F(x, y) 
denotes a two-variable collision-free function; 
and 

fifth calculation means 416 for calculating a is 
response R by dividing the result calculated by 
the third calculation means 412 by the result 
calculated by the fourth calculation means 414 
modulo p { R = C * C '^^^'^^ mod p ). 

20 

30. The device for authenticating ler's access rights 
to resources of claim 29, furthe.- comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 25 
with from the outside, confining the second 
memory means 415 and the fourth calculation 
means 414. 

31 . The device for authenticating user's access rights 30 
to resources of claim 16. wherein 

the unique security characteristic information 
of the device 1 4 is the private key X of an EIGa- 
mal public key pair with a modulus p and a gen- 35 
erator G, 

the public key Y corresponding to X is the X-th 
power of G modulo p ( Y = G ^ mod p ). 
u . denotes the z-th power qf the modulo p 
( u = G ^ mod p ) for a random number z. 40 
K denotes the product modulo p of the z-th 
power of Y modulo p and a data K 
(K' = Y^ Kmodp). 

the seventh memory means 522 retains the 
pair of u and K'. 45 
a random number r generated by the random 
generation means 602 is stored in the sixth 
memory means 603. 

C denotes the product modulo p of K* and r 
(C = rK*modp). so 
the fourth memory means retains the pair C 
and u, and 

the verification means 106 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 505 by verifying that the quotient of S5 
R divided by r modulo p is congruent with K 
modulo p (K mod p = r* R mod p ). 

32. The device for authenticating user's access rights 
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to resources of claim 31 . wherein 

proof support information t 13 stored in the 
third memory means 513 satisfies the relation 
t = D + F(p. e) , where e denotes the user 
unique identifying information 16 stored in the 
second memory means 515 and F(x. y) 
denotes a two- variable collision-free function, 
artd 

a response R generated by the response gen- 
eration means 516 is identical with the quotient 
of C divided by X-th power of u modulo p 
( R = u mod p ). where the pair C and u is 
the challenging data stored in the first memory 
means 511. 

33. The device for authenticating user's access rights 
to resources of claim 32. wherein 

the response generation means 516 further 
comprises: 

third calculation means 512 for calculating the 
t-th power of the component u of the challeng- 
ing data pair stored in the first memory means 
51 1 modulo p. where t denotes proof support 
information stored in the third memory means 
513 (ut mod p); 

fourth calculation means 514 for calculating the 
F(p, e)-th power of u modulo p (u'"^-^' mod p). 
where e denotes the user unique identifying 
information 16 stored in the second memory 
means 515 and F(x. y) denotes a two-variable 
collision-free function; and 
fifth calculation means 516 for calculating a 
response R by dividing the product of the other 
corrponent C of the cfiallenging data pair and 
the result calculated by the fourth calculation 
means 514 by the result calculated by the third 
calculation means 512 modulo p. 
(R = Cu''^"-®^u'* modp). 

34. The device for authenticating user's access rights 
to resources of claim 33, further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 
memory means 515 and the fourth calculation 
means 514. 

35. The device for authenticating user's access rights 
to resources of claim 1 7, wherein 

the unique security characteristic information 
of the device 1 4 is the signature key X of an 
EIGamal public key pair with a modulus p and a 
generator G. 

the public key Y corresponding to X is the X-th 
power of G modulo p ( Y = G mod p ). 
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a response stored in the fifth memory means 
605 is a pair of R and S, and 
the verification means 506 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 605 by verifying that the C-th power 5 
of G for the challenging data C stored in the 
fourth memory means is congruent modulo p 
with the product of the R-th power of Y and the 
S-th power of R (G^ mod p = y'^R ^ mod p ). 

10 

36. The device for authenticating user's access rights 
to resources of daim 35. wherein 



proof support information t 13 stored in the 
third memory means 613 satisfies the relation 
t = D + F(p. e) . where e denotes the user 
unique identifying information 16 stored in the 
second memory means 616. and F(x, y) 
denotes a two-variable collision-free function, 
and 

the response generation means 1 16 generates 
a response pair R and S by carrying out the fol- 
lowing steps of: 

generating a random number k; 

calculating R as the k-th power of G modulo p 

(R = G** mod p); and 

calculating S according to the relation 
S = (C-RX)k '^ mod (p-1). 



the cipher function is of the asymmetric key 
cryptography, and 

the user unique identifying information 16 is a 
component of the key pair of the cipher func- 
tion. 

40. The device for authenticating user's access rights 
to resources of claim 39. wherein 

the cipher function is of the public key cryptog- 
raphy, and 

the user unique identifying information 16 is the 
private key of the public key pair of the cipher 
function. 

The device for authenticating user's access rights 
to resources of claim 38. wherein 

the cipher function is of the symmetric key 
20 cryptography, and 

the user unique identifying information 1 6 is the 
common secret key of the cipher function. 

42. The device for authenticating user's access rights 
25 to resources of claim 8 or 1 6. wherein 

the verification device 10 further comprises: 
eighth memory means 310a for storing a clear 
data encryption of which is the challenging 
data or the seed for challenging data stored in 
the first memory means 111; and 
comparison means 310b for examining 
whether the dear data stored in the eighth 
memory means 310a is identical with data 
inputted to the comparison means 310b. and 
wherein 

the verification means 106 feeds the response 
or the de-randomized value of the response 
stored in the fifth memory means 105 to the 
comparison means 310b. receives the answer 
from the comparison means 310b. and thereby 
the verification means 106 verifies the legiti- 
macy of the response if and only if the received 
answer shows that the clear data stored in the 
eighth memory means 310a is identical with 
the data inputted to the comparison means 
310b. 

43. The device for authenticating user s access rights 
to resources of claim 8 or 1 6. wherein 

the verification device 10 further comprises: 
ninth memory means 310a for storing a value 
obtained by applying a one-way function to 
clear data encryption of which is the challeng- 
ing data or the seed for challenging data stored 
In the seventh memory means 122; 
sixth calculation means 310c for outputting a 
value calculated by applying the one-way func- 



37. The device for authenticating user's access rights 30 
to resources of claim 36. further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 35 
memory means 616 and the fourth calculation 
means 614. 

38. The device. for authenticating user's access rights 
to resources of daim 4. wherein 40 

the user unique identifying information 16 
stored in the second memory means 71 5 is a 
decryption key of a cipher function, 
the proof support information 13 stored in the 45 
third memory means 713 is an encryption of 
the unique security characteristic information 
of the device with the encryption key corre- 
sponding the decryption key. and 
the first calculation means 712 calculates the so 
unique security characteristic information of 
the device 14 by decrypting the proof support 
information stored in the third .memory means 
713 with the decryption key stored in the sec- 
ond memory means 715. 55 

39. The device for authenticating user's access rights 
to resources of daim 38. wherein 



15 

41. 



45 



EP 0 792 044 A2 



46 



tion to an inputted data; and 
comparison means 310b for examining 
whether the value stored in the ninth memory 
means 310a is identical with data inputted to 
the comparison means 31 Ob. and wherein s 
the verification means 1 06 feeds the response 
or the de- randomized value of the response to 
the sixth calculation means 310c. receives a 
result from the sixth calculation means 310c, 
feeds the result to the comparison means 3 1 0b jo 
and receives an answer from the comparison 
means 310b, and thereby the verification 
means 106 verifies the legitimacy of the 
response if and only if the received answer 
shows that the result of the calculation by the is 
sixth calculation means 310c is identical with 
the data stored in the ninth memory means 
310a- 



44. The device for authenticating user's access rights 20 
to resources of claim 8 or 16. wherein 

the verification device 10 further comprises: 
program execution means 310 for executing 
code of a program encryption of which is the 25 
challenging data stored in the seventh memory 
means 122, and wherein 
the verification means 106 feeds the response 
stored in the fifth memory means 1 05 as pro- 
gram code to the program execution means 30 
310. and 

the program execution means 310 correctly 
functions if and only if the response generation 
means 116 correctly decrypts the challenging 
data which is an encryption of the code of the 35 
program, that is. the encryption of the program 
is correctly decrypted. 

45. The device for authenticating user's access rights 

to resources of claim 8 or 1 6. wherein 40 

the verification device 10 further comprises: 
program execution means 310: 
program storing means 310g; and 
program decryption means 31 Oh. and wherein 45 
the program storing means 310g stores code of 
a program a part or all of which is encrypted, 
an encryption of the decryption key for the par- 
tial or whole encrypted program code is the 
challenging data stored in the seventh memory so 
means 122. 

the verification means 106 feeds the response 
to the program decryption means 31 Oh. 
the program decryption means 31 Oh decrypts 
the program stored in the program storing 55 
means 310g with the response as a decryption 
key. and 

the program execution means 310 correctly 
executes the decrypted program if and only if 



the response genei-ation means 116 correctly 
decrypts the challenging data, that is. the 
decryption key for decrypting the encryption of 
the program is correctly decrypted. 

46- The device for authenticating user's access rights 
to resources of claim 1 4. wherein 

the proving device 11 and the verification 
device 10 are installed in a box material, and 
the verification device 10 transfers the chal- 
lenging data 18 stored in the fourth memory 
means to the first memory means 1 1 1 of the 
proving device 1 1 and the proving device 1 1 
transfers the response 19 generated by the 
response generation means 116 to the fifth 
memory means 105 of the verification device 
10 without using a communication network out- 
side of the box material. 

47. A method for authenticating user's access rights to 
resources by verifying the legitimacy of a response 
generated from challenging data for proving the 
user's access rights, comprising: 

a step for storing the challenging data; 

a step for storing unique identifying information 

of the user; 

a step for storing proof support information 
which is a result of predetermined computa- 
tions to the unique identifying information of the 
user and unique security characteristic infor- 
mation; 

a step for generating a response by executing 
predetermined computations to the challenging 
data, the unique identifying information of the 
user and the proof support information; and 
a step for verifying the legitimacy of the 
response by verifying that the response, the 
challenging data and the unique security char- 
acteristic information satisfy a specific prede- 
fined relation. 

48. A computer program product for use with a compu- 
ter, the computer program product comprising: 

a computer usable medium having computer 
readable program code means embodied in 
the medium for causing the computer to 
authenticate user's access rights to resources 
by verifying the legitimacy of a response 19 
generated from challenging data 1 8 for proving 
the user's access rights, the computer program 
product having: 

computer readable program code means for 
causing the computer to store the challenging 
data 18; 

computer readatrfe program code means for 
causing the computer to store unique identify- 
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ing information of the user 16; 
computer readable program code means for 
causing the computer to store proof support 
information 13 which is a result of predeter- 
mined computations to the unique identifying 5 
information of the user 1 6 and unique security 
characteristic information 14; 
computer readable program code means for 
causing the computer to generate a response 
1 9 by executing a predetermined computations io 
to the challenging data 18. the unique identify- 
ing information of the user 16 and the proof 
support information 13; and 
computer readable program code means for 
causing the computer to verify the legitimacy of is 
the response 19 by verifying that the response 
19. the challenging data 18 and the unique 
security characteristic information 14 satisfy a 
specific predefined relation. 

20 

49. A computer program product for use with a compu- 
ter, the computer program product comprising: 

a computer usable medium having computer 
readable program code means embodied in 25 
the medium for causing the computer to gener- 
ate a response 19 from challenging data 18, 
the legitimacy of which is to be verified for 
authenticating user's access rights, the compu- 
ter program product having: 30 
conrputer readable program code means for 
causing the computer to store the challenging 
data 18; 

conputer readable program code means for 
causing the computer to store unique identify- 35 
ing information of the user 16; 
computer readable program code means for 
causing the computer to store proof support 
inforniation 13 which is a result of predeter- 
mined computations to the unique identifying 40 
information of the user 16 and unique security 
characteristic information 14; and 
computer readable program code means for 
causing the computer to generate a response 
19 by executing predetermined computations 45 
to the challenging data 18. the unique identify- 
ing information of the user 16 and the proof 
support information 13. 

50. A program execution control device for authenticat- so 
ing user's access rights to resources by verifying 

the legitimacy of a response generated from chal- 
lenging data for proving the user's access rights 
and controlling execution of a program based on 
the authentication of the user's access rights, com- ss 
prising: 

first memory means 111 for storing challenging 
data 18; 



second memory means 1 1 5 for storing unique 
identifying information of the user 16; 
third memory means 1 1 3 for storing proof sup- 
port information 1 3 which is a result of prede- 
termined computations to the unique 
identifying information of the user 16 and 
unique security characteristic information of 
the device 14; 

response generation means 1 1 6 for generating 
a response 19 by executing predetermined 
computations to the challenging data 18. the 
unique identifying information of the user 16 
and the proof support information 13; 
verification means 106 for verifying the legiti- 
macy of the response 1 9 by verifying that the 
response 19, the challenging data 18 and the 
unique security characteristic information 14 
satisfy a specific predefined relation; and 
continuation means for continuing execution of 
the program if the legitimacy of the response is 
verified. 

51, An information processing apparatus for authenti- 
cating user's access rights to specific information 
processing resources by verifying the legitimacy of 
a response 19 generated for proving the user's 
access rights and permitting access to the specific 
information processing resources, comprising: 

first memory means 111 for storing challenging 
data 18; 

second memory means 1 15 for storing unique 
identifying information of the user 16; 
third memory means 1 13 for storing proof sup- 
port information 13 which is a result of prede- 
termined computations to the unique 
identifying information of the user 16 and 
unique security characteristic information 14; 
response generation means 1 16 for generating 
a response 19 by executing predetermined 
conrtputations to the challenging data 18. the 
unique identifying information of the user 16 
and the proof support information 13; 
verification means 106 for verifying the legiti- 
macy of the response 19 by verifying that the 
response 19. the challenging data 18 and the 
unique security characteristic information 14 
satisfy a specific predefined relation; and 
permission means for permitting access to the 
specific information processing resources if the 
legitimacy of the response is verified. 
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